c2s/c2s.c in Jabber Open Source Server 2.3.2 and previous versions truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jabberd2 jabberd2 |